A Persistent Cross-Site Scripting (XSS) vulnerability in message_admin.php in Projectworlds Car Rental Management System v1.0 allows unauthenticated remote attackers to harvest an admin login session cookie and steal an admin session upon an admin login.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-10-06T12:55:54

Updated: 2024-08-04T15:05:11.159Z

Reserved: 2020-08-13T00:00:00

Link: CVE-2020-23832

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-10-06T13:15:13.573

Modified: 2024-11-21T05:14:06.610

Link: CVE-2020-23832

cve-icon Redhat

No data.